Lucene search

[email protected]CVE-2007-4101

HistoryJul 31, 2007 - 10:17 a.m.

CVE-2007-4101

2007-07-3110:17:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve

2007

4101

php

remote file inclusion

madoa poll 1.1

security vulnerability

8.5 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.139 Low

EPSS

Percentile

95.6%

JSON

Multiple PHP remote file inclusion vulnerabilities in Madoa Poll 1.1 allow remote attackers to execute arbitrary PHP code via the Madoa parameter to (1) index.php, (2) vote.php, and (3) admin.php.

CPENameOperatorVersion
global_centre:aplomb_pollglobal centre aplomb polleq1.1

CPE	Name	Operator	Version
global_centre:aplomb_poll	global centre aplomb poll	eq	1.1

References

osvdb.org/37262

osvdb.org/37263

osvdb.org/37264

securityreason.com/securityalert/2937

www.attrition.org/pipermail/vim/2007-July/001739.html

www.securityfocus.com/archive/1/475096/100/0/threaded

www.securityfocus.com/bid/25138

8.5 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.139 Low

EPSS

Percentile

95.6%

JSON

Related for CVE-2007-4101

prion1